General

  • Target

    commercial_lease_agreement_for_ga (cnk).js

  • Size

    255KB

  • Sample

    220902-b8a5xaechm

  • MD5

    af88af554836089591e281bfa07aeb11

  • SHA1

    b615aab93c76bc030efbc18649dc6303d9f49256

  • SHA256

    b78cc837ec7f6f5e8d9199629f77819b2a846ca2e68a12cf23388ddc7428c0cb

  • SHA512

    fefea489a2a1f0983345cf7984ade4f3e142551d6e22e149a4e0d6b7d41ecd0c4cd06f2f136d042b8565d8743e483ea953ad36cb99ed9370d24a0eefb2b44c15

  • SSDEEP

    6144:yeLfh6vxcr8uVgTdpeYmD1wFEFyA2hL/WVX8KFLsIPf2WADD1+RH:y+TYmDemFyYs0LPfrADD8RH

Score
10/10

Malware Config

Targets

    • Target

      commercial_lease_agreement_for_ga (cnk).js

    • Size

      255KB

    • MD5

      af88af554836089591e281bfa07aeb11

    • SHA1

      b615aab93c76bc030efbc18649dc6303d9f49256

    • SHA256

      b78cc837ec7f6f5e8d9199629f77819b2a846ca2e68a12cf23388ddc7428c0cb

    • SHA512

      fefea489a2a1f0983345cf7984ade4f3e142551d6e22e149a4e0d6b7d41ecd0c4cd06f2f136d042b8565d8743e483ea953ad36cb99ed9370d24a0eefb2b44c15

    • SSDEEP

      6144:yeLfh6vxcr8uVgTdpeYmD1wFEFyA2hL/WVX8KFLsIPf2WADD1+RH:y+TYmDemFyYs0LPfrADD8RH

    Score
    10/10
    • GootLoader

      JavaScript loader known for delivering other families such as Gootkit and Cobaltstrike.

    • Blocklisted process makes network request

MITRE ATT&CK Enterprise v6

Tasks